22.9 - Firewall Won't Block Rules

[yagigain]

Hi,

I am unable to get IP's to block via the Firewall.    I also have Geoblock enabled for testing.       Let's say I block .cn area.   I see the blocking happening in the Firewall log but I can still ping the IP that has been blocked in the log !

I'm also trying to block a single IP on the internet.   I have spent days trying to get this to work !  It just does not seem to block.    With IPtables, bang I can drop anything within 2 seconds.

I have setup a rule in WAN - Direction In - Source (either the alias or the IP address as a single IP block) and default everything else.      I have tried single IP's, entire subnets, change source and destination.  I have tried the block on WAN on LAN and floating.   The IP I am blocking does not get blocked and I am still able to connect to it (in this case an RDP server).    It's now 4am I and I am STILL trying to get this running !!    It just dosn't seem to work.

Is there something that I am missing ?  Is there an issue with the Outgoing NAT perhaps ? 

[yagigain]

OK, I think I got it.  I had to make an outbound rule.    I read that outbound rules arn't needed but in this case it indeed was needed.

Other than that its been running great !